Skip to main content
Journal ArticleOPEN ACCESS

Cryptanalysis of the Tillich-Zémor hash function

Journal of Cryptology (2011) 24(1) 148-156
DOI: 10.1007/s00145-010-9063-0
21Citations
Citations of this article
43Readers
Mendeley users who have this article in their library.

Abstract

At CRYPTO '94, Tillich and Zémor proposed a family of hash functions, based on computing a suitable matrix product in groups of the form SL 2(ℱ 2n). We show how to construct collisions between palindromic bit strings of length 2n+2 for Tillich and Zémor's construction. The approach also yields collisions for related proposals by Petit et al. from ICECS '08 and CT-RSA '09. It seems fair to consider our attack as practical: for parameters of interest, the colliding bit strings have a length of a few hundred bits and can be found on a standard PC within seconds. © 2010 International Association for Cryptologic Research.

Author supplied keywords

Cite

CITATION STYLE

APA

Grassl, M., Ilić, I., Magliveras, S., & Steinwandt, R. (2011). Cryptanalysis of the Tillich-Zémor hash function. Journal of Cryptology, 24(1), 148–156. https://doi.org/10.1007/s00145-010-9063-0

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free